URLhaus Database
Every malware URL on URLhaus is associated with a host. A host can be either an domain name or an IP address (in case the malware URL is hosted on an IP address and doesn't use a domain name).
Database Entry
| Host: | upload.sexy |
|---|---|
| Spamhaus DBL : | Not blocked |
| SURBL : | Not blocked |
| Quad9 : | Status unknown |
| AdGuard : | Blocked |
| Cloudflare : | Not blocked |
| ProtonDNS : | Status unknown |
| OpenBLD : | Blocked |
| DNS4EU : | Blocked |
| Control D HaGeZi : | Not blocked |
| Firstseen: | 2021-02-03 07:31:05 UTC |
| Total malware sites : | 8 |
| Online malware sites : | 0 (0%) |
| Offline Malware sites : | 8 (100%) |
| A record(s) observed : | 1 |
IP addresses
The table below shows all IP address observed for this particular host (in case the host is a domain name, all A records will be listed - including all historical ones). Please note that the output is limited to 10 entires.
| Firstseen (UTC) | IP address | Hostname | SBL | ASN | Country | Active? |
|---|---|---|---|---|---|---|
| 2021-02-03 07:31:06 | 217.160.0.183 | 217-160-0-183.elastic-ssl.ui-r.com | Not listed | AS8560 IONOS-AS |  DE | no |
Malware URLs
The table below shows all malware URLs that are associated with this particular host.
| Dateadded (UTC) | URL | Status | Tags | Reporter |
|---|---|---|---|---|
| 2021-02-05 16:23:04 | https://upload.sexy/uploads/723728IMG_06052.pdf | Offline | exe SnakeKeylogger  |  abuse_ch |
| 2021-02-03 16:22:04 | https://upload.sexy/uploads/927520IMG_10007.pdf | Offline | exe SnakeKeylogger | abuse_ch |
| 2021-02-03 16:19:05 | https://upload.sexy/uploads/906249IMG_055708.pdf | Offline | exe SnakeKeylogger | abuse_ch |
| 2021-02-03 07:37:04 | https://upload.sexy/uploads/139913IMG_33687.pdf | Offline | exe SnakeKeylogger | abuse_ch |
| 2021-02-03 07:34:06 | https://upload.sexy/uploads/660806IMG_59733.pdf | Offline | exe Formbook | abuse_ch |
| 2021-02-03 07:34:06 | https://upload.sexy/uploads/417594IMG_29866.pdf | Offline | exe Formbook | abuse_ch |
| 2021-02-03 07:32:04 | https://upload.sexy/uploads/532927IMG_804941.pdf | Offline | exe Loki | abuse_ch |
| 2021-02-03 07:31:06 | https://upload.sexy/uploads/618718IMG_222446.pdf | Offline | exe Loki | abuse_ch |
The table below shows recent payloads delivery by this host.
| Firstseen (UTC) | SHA256 hash | File type | Bazaar | Signature |
|---|---|---|---|---|
| 2021-02-05 16:23:04 | 5943e3c4fa039363f210006fa57a58af8df17c39f69e8703702c23894cfc36f4 | exe | SnakeKeylogger | |
| 2021-02-03 16:22:04 | fb5d3e82dd9213436edf619325fd63430b32afe0e43242e1839b73bb7b8e4898 | exe | SnakeKeylogger | |
| 2021-02-03 16:19:05 | 2c2323849ce8b94fdba446df7ff61ff3048507771fa126b486ddbe07d40c7c89 | exe | SnakeKeylogger | |
| 2021-02-03 07:37:04 | d8e19bae217a245b3eea0144a2e70ffc8b7a61944b2ae00077a0616694080097 | exe | SnakeKeylogger | |
| 2021-02-03 07:34:06 | 7d13f3e40c90d1e1d5d4a05438f8e748b6d2a21f93831f5d4351e1f7a0d50c60 | exe | Formbook | |
| 2021-02-03 07:34:06 | 2019825db3fcb47194e9fdb0948cf27201eb4b36b35ff8d8e5513dcdbb309e55 | exe | ||
| 2021-02-03 07:32:04 | e99dc9cc75fcf7e6aec21ebdbbe47cadb4ba7703a7bdd5bad788aa128f2f4ff6 | exe | ||
| 2021-02-03 07:31:06 | ef203882acf676c759bf86f6f60a5a570a5c84a163314462c133bb70fada63a7 | exe | Loki |